CEH 2016 Test Review

What is CEH?
Administered by EC-Council, CEH stands for Certified Ethical Hacker, is a professional certification about information security of computer systems with penetration testing skills.

Is this necessary?
Compared to CISSP(Certified Information Systems Security Professional), CEH is more focused on ethical hacking techniques more practical and technical. CEH is asking how to do ethical hacking(techniques) specifically sniffing, scanning or DDoS and CISSP is asking how to secure company’s asset with BCP(Business Continuity Plan)/DRP(Disaster Recovery Plan). I assume CEH is for 2 or 3 years security engineers and CISSP is for 5 or 6 years senior level (CISO) or security manager.

I recommend this cert if you worked in this field more than 1 or 2 years and want to learn more about ethical hacking. Still no certs will get you a job, but your experience and knowledge will.

How did I study
I took a 35 hours CEH class, 9:30am to 5:30pm. I had short experience as a penetration tester. Also, I have a degree on Information Security& Assurance, which helped me to understand some terminology and concept of cyber security. I notice some of contents are pretty similar with CISSP(since I studied/ passed it last winter ), so if anyone just passed CISSP , it would be helpful to study CEH next. Personally, CISSP seems have more broad contents including copyright ,patent ,operating/physical security etc.

1. 16th May ~ 20th May , CEH 35 hrs class (1 week)
Unfortunately, I had to pay full cost (extra cost) because I didn’t have 2 years experience at that time.

2. 21th May ~ 22th July (2 months)
For study materials, I only used “Ethical Hacking and countermeasures v9” which is an EC-Council official book. I read the book three times and remember important concept liks nmap, wireshark command, scanning techniques , Asymmetric & Symmetric cipher features etc. I summarized each chapters and studied.

After then, I used “Skillset (Pro membership)”, solved 5800 questions and made 102 readiness. Skillset is really helpful to prepare the test. One month before the exam date, I took “simulated exam” on Skillset ,everyday around 10am, so i can simulate upcoming exam. Reviewing what you missed or didn’t know from the questions is really important. I got 56 score at first simulated exam, but later I went up to 84.

Exam date : July 22th, 2016, 10AM
I finished test in 2 hrs and 20 min and I clicked “end exam” and there’s “passed” sign on the final page, but no score details. After 2 or 3 days from test date, there’s new email from EC-council about the certificate. and I can find the details about score over there.

Hacking other network or system is illegal and considered as crime. I am not responsible for what you do with this information. This blog is for educational purposes only.

Recent Posts: Info In Security

Kioptrix level 2 Vulnbub is perfect place to practice hands-on experience for pen-test. I personally recommend do most of vulnhub lab before registering PWK(OSCP) course. Kioptrix level 2 : https://www.vulnhub.com/entry/kioptrix-level-11-2,23/ Easily download the virtual machine image from the link, set up the network into Bridge or NAT (depends on your preference) (kioptrix level2 img) 0. […]

https://www.hackthebox.eu/ To signup the ‘Hack the Box’ website needs to find “invite code”. First, find the missing/hidden information on the page. You can easily edit HTML elements with developer tools, which will show on your browser by pressing key F12. You can see the token value is changing whenever refreshing the page. Sadly, token […]

Started at 20th Oct and ended on 22nd. Unlike other CTF that you can easily submit flag value on web, PWN2WIN 2017 CTF ask us to submit flag value via github. So we spent 2 or 3 hours to setup that environment (getting ssh, getting team’s key..) but it was fun!! For CTF questions, you […]

Search

Search for:

Text Widget

This is a text widget, which allows you to add text or HTML to your sidebar. You can use them to display text, links, images, HTML, or a combination of these. Edit them in the Widget section of the Customizer.